initial version of saslauthd role

roles/saslauthd/defaults/main.yml

@@ -0,0 +1,2 @@
+---
+saslauthd_mech: pam

roles/saslauthd/handlers/main.yml

@@ -0,0 +1,6 @@
+---
+
+- name: restart saslauthd
+  service:
+    name: saslauthd
+    state: restarted

roles/saslauthd/tasks/main.yml

@@ -0,0 +1,29 @@
+---
+
+- name: install packages
+  package:
+    name: cyrus-sasl
+    state: installed
+
+- block:
+    - name: set saslauthd to use ldap
+      lineinfile:
+        path: /etc/sysconfig/saslauthd
+        line: MECH=ldap
+        regexp: "^MECH=.*"
+      notify: restart saslauthd
+    - name: create saslauthd.conf
+      template:
+        dest: /etc/saslauthd.conf
+        src: saslauthd.conf.j2
+        mode: 0644
+        owner: root
+        group: "{{ ansible_wheel }}"
+      notify: restart saslauthd
+  when: saslauthd_mech == "ldap"
+
+- name: enable saslauthd service
+  service:
+    name: saslauthd
+    state: started
+    enabled: true

roles/saslauthd/templates/saslauthd.conf.j2

@@ -0,0 +1,2 @@
+ldap_servers: {{ ldap_server }}
+ldap_search_base: {{ ldap_basedn }}